With iAuditor’s Single-Sign-On (SSO) capability, users no longer have to set, remember and manage a separate password for iAuditor. After their administrator enables SSO, accessing iAuditor becomes as simple as a couple of clicks provided the user is already authenticated with their company’s system. When not already authenticated, users simply have to authenticate with their company’s system before they can access iAuditor.
A wide range of enterprise authentication systems are supported including Active Directory (ADFS, Azure), PingFederate, Google and any solution that supports SAML 2.0. The only other requirement is that the user’s email address is the same between iAuditor and the external system.
A typical setup on our end takes 15-30 minutes depending on the complexity of the external system.
SSO can be enabled in parallel with existing password authentication so teams can transition smoothly to the new experience. Administrators can turn off access to iAuditor via the old password authentication at any time, controlling access from a single central place in their company.
Automatic adding and removing users is possible for customers who integrate with the iAuditor API. Integrated solutions can also assign users automatically to desired iAuditor groups to control their privileges and data access based on their company role. The following can also be automated:
- list all users and the groups they belong to
- add or remove users to groups
- update user details
More details about managing your user base with the iAuditor API can be found here.
Managers or IT administrators who need an easy way to export a report of all their iAuditor users and their group membership can do that with the iAuditor Python SDK without having to build an integrated solution themselves. For more details see our user tools documentation.
For more information see the following articles: